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1. Introduction 


This user manual introduces overview of all features and technologies provided by FortKnox 
Personal Firewall 2009. 


1.1. Basic Protection Concepts 


Most threats today use Internet to spread and download additional malware that may harm 
user’s computers. Spyware can monitor user’s activity and send collected data over Internet 
to its creator. Firewall is one of the most important barriers that protect systems from 
potential treats. 


1.2. Used Technologies 


FortKnox Personal Firewall 2009 uses the following technologies to protect your system: 


e Inbond traffic checking - controls incoming traffic from the network. 
e Outbound traffic checking - controls outgoing traffic to the network. 


e Statefull packet inspection - analyze traffics for correctness and allow connections 
initiated by user only. 


e Intrusion prevention system - analyze packet streams for suspicious activity. 


e Process defense system - ensures integrity of all processes that have access to the 
network. 


1.3. Supported Operating Systems 


FortKnox Personal Firewall 2009 is compatible with Windows Vista (64-bit and 32-bit), 
Windows XP (32-bit), and Windows 2000 (32-bit) operating systems. 


2. Installation 


FortKnox Personal Firewall 2009 can be installed either from the installation file available 
on your installation CD, or can be downloaded from FortKnox Personal Firewall website: 
www.fortknox-firewall.com in download section. Latest version is always available on the 
mentioned website. 


2.1. Installation from website 


Visit FortKnox Personal Firewall website at www.fortknox-firewall.com, go to the 
Download section of the website and select appropriate Download Now link based on your 
language preferences. Save the installation file to your disk. Start the installation by 


executing (double-clicking) the downloaded setup file. 


2.2. Installation Process 


Please note: It is recommended that you close all other running applications before starting 
the installation process; including other security applications that might block the 
installation. You have to start installation process under administrator account. 

a) Double-click on the installation setup file to begin the installation process. 


b) Select the preferred installation language and click on OK button. 


Select Setup Language 


O) Select the language to use during the installation: 


fengish y 


Note: This is the language of the installation program. You can change the language of 
the FortKnox Personal Firewall later on the Skin/Languages setup wizard page. 

To change the language after installation, right-click the system tray icon and select 
the Options menu. Select from Active Language menu your preferred language and 
press the Apply button. 


c) When setup begins click on Next to view the License Agreement dialog. Click on I 
accept the agreement to accept FortKnox Personal Firewall License Agreements 
terms and conditions. 


Setup - FortKnox Personal Firewall 


License Agreement 
Please read the following important information before continuing. 


Please read the following License Agreement. You must accept the terms of this 
agreement before continuing with the installation. 


FortKnox Personal Firewall License Agreement 


Please read the terms and conditions of this license agreement ("License") 
before installing FortKnox Personal Firewall ("Software"). By installing and 
using the Software you accept and agree to the terms of this License. This 
License constitutes the entire agreement concerning the Software between 
You and NETGATE Technologies s.r.o., with its seat at Tajovskeho 8, 

971 01 Prievidza, Slovak Republic registered in the Commercial 

Register of the District Court Trencin Section Sro, Insertion No 17325/R, 
BIN: 36 710 881, IF you do not agree with these terms and conditions, 


ie... = die bal... ie mba OL. CL... eg ee ee senet im eheda n 


®©) | accept the agreement 
© I do not accept the agreement 


d) Read the Installation Notes, and then click on Next button. You have to uninstall all 
other firewall programs before you continue with the installation process. 


Setup - FortKnox Personal Firewall 


Information 
Please read the following important information before continuing. 


When you are ready to continue with Setup, click Next. 


FortKnox Personal Firewall Installation Notes 


Before you install FortKnox Personal Firewall; you must uninstal other 
firewall programs on your computer. Using multiple Firewalls simultaneously 
may cause unexpected system behavior and system crashes. If you use 
Windows XP with SP2 or later, the built-in firewall will be automatically disabled, 
If you need to uninstall another firewall program, please cancel the installation 
now and continue with the installation process later. 


Drivers warning dialog - you must allow FortKnox Firewall NDIS miniport 
driver installation when asked by operating system to successfully complete 
the installation process, 


e) Choose the destination folder for the installation, and then click on Next button. 


Setup - FortKnox Personal Firewall 


Select Destination Location 
Where should FortKnox Personal Firewall be installed? 


= 
O Setup will install FortKnox Personal Firewall into the following folder. 


To continue, click Next. If you would like to select a different folder, click Browse. 


|c: \Program Files\NETGATE \FortKnox Personal Firewall 2009 ] 


At least 7.9 MB of free disk space is required. 


f) Select the Start Menu folder where the program's shortcuts will be located. Click on Next 
to continue. 


Setup - FortKnox Personal Firewall 


Select Start Menu Folder 
Where should Setup place the program's shortcuts? 


Setup will create the program's shortcuts in the following Start Menu folder. 


To continue, click Next. IF you would like to select a different folder, click Browse. 


FortKnox Personal Firewall 2009 | 


g) Check the additional tasks that should be performed. It is recommended to check all 
options. Click on Next to continue. 


~“ Setup - FortKnox Personal Firewall 


Select Additional Tasks 
Which additional tasks should be performed? 


Select the additional tasks you would like Setup to perform while installing FortKnox 
Personal Firewall, then click Next. 


Additional icons: 
Create a desktop icon 
Create a Quick Launch icon 


h, FortKnox Personal Firewall Language and Skin wizard will be shown. Select preferred skin 
and language that matches your individual taste. 


” FortKnox Personal Firewall - Skins/_anguages: 


Skins/Languages: 


Active skin: 


©) Default © Redrose © Deepsea 


Active language: — 
English 


i, TO complete the installation process your computer need to restarted. Click on Finish 
button to restart computer. 


After the installation process is finished, your system has to be restarted to successfully 
start the FortKnox Personal Firewall 2009. First start may take a while on computers 
with Windows Vista operation systems. 


3. Program Activation 


3.1. Trial/Limited Version 


From the FortKnox Personal Firewall website you can download the trial version of FortKnox 
Personal Firewall 2009. After the installation, this trial full-featured mode will run for 15 
days. After this period the program will switch to limited mode. Many features and options 
are disabled in limited mode, it is recommended to purchase a valid license to switch back to 
the full featured mode. License is valid for purchased time period. After license expiration 
the program will switch back to the limited mode and you should renew your license. Valid 
time period will be visible on the main program screen after synchronization with the license 
server. 


3.2. Purchase 


In the Buy menu select the Buy Now button. Default Internet browser will be launched with 
the registration page. 


3.3. Registration 


In the Buy menu select the Enter serial button. Registration dialog will show up. 

With purchase of FortKnox Personal Firewall 2009 you have received registration 
information; registration name, registration e-mail and serial number. This 
information has to be exactly entered into registration dialog. Please note that serial number 
only contains characters A-F and numbers. 


> FortKnox Firewall 2009 


Please enter registration information: 


The Product is licensed to: 


Order email: 


Serial number: 


4. Working with FortKnox Personal Firewall 2009 


After you have successfully installed FortKnox Personal Firewall 2009 on your computer, 
the FortKnox Personal Firewall 2009 icon will appear on your desktop. Double-clicking 
the icon will launch the FortKnox Personal Firewall 2009. This interface allows you to 
configure individual aspects of the application. 


4.1. System tray icon 


Once the application is started, you can see a small red/black icon in the system tray, 
indicating that the application is running. By right-clicking on the tray icon, a context menu 
will popup: 


FortKnox Personal Firewall 


Block All 
Normal 
Allow All 
Statistics 
Connections 
Advanced 
Options 
Applications 


Traffic Log 


Enable Network Connections 
Disable Network Connections 


About 


Exit Firewall 


The following options are available: 


FortKnox Personal Firewall - click this option to hide or show the main application screen. 
Block All - when set, this option will block all incoming and outgoing traffic. 

Normall - when set, firewall will filter traffic based on firewall rules. 

Allow All - when set, this option will allow all incoming and outgoing traffic. 

Statistics - shows statistical information about incoming and outgoing traffic and attacks. 
Connections - shows active network connections. 

Advanced - allow to set extended user rules for filtering traffic. 

Options - this option will open application configuration dialog. 

Applications - shows individual application rules. 

Traffic Log - show log of all network traffic inspected by firewall. 

Enable Network Connections - enable all network interfaces in the system. 

Disable Network Connections - disable all network interfaces in the system. 

About - this option will show application about dialog. 

Exit - this option will quit the application. 


4.2. Network connection confirmation 


FortKnox Personal Firewall 2009 allows network connection confirmation in real-time. 
Users have the option to allow or deny network connections for the individual applications. 


When a connection is going to be established the following dialog will popup: 


> FortKnox Firewall 2009 


Firefox 
is trying to communicate to gy-in-f100.google.com. 


Connection details: 

Remote host 74.125.91.100:80 
Reason: HTTP - Web browsing 
Protocol: TCP 

General advice: Allow 


Allow this network communication? 


O Remember my answer 
and do not ask me next time 
for this application. 


This dialog offers the following actions: 
Yes - connection will be allowed. 


No - connection will be denied. 


Remember my answer and do not ask me next time for this application - firewall will 
save your decision and next time will not ask again. Rules for individual applications 
can be changed in the Applications menu. 


4.3. Process activity confirmation 


FortKnox Personal Firewall 2009 allows process confirmation for some suspicious 
activities. Users have the option to allow or deny such activity. 


When an action is going to be happen the following dialog will popup: 


m FortKnox Firewall 2009 


P Process: 
awft.exe 
is trying to write data into the remote process: 
Firefox 


Allow this action? 


[DD add to the Trusted Applications 
and do not ask me next time 
for this application. 


This dialog offers the following actions: 
Yes - action will be performed. 


No - action will be denied. 


Add to the Trusted Applications and do not ask me next time for this application - 
firewall will save your decision and next time will not ask again. To reset these rules press 
the Reset Trusted button in the Options/Enhancements menu (near the Enable 
Process Defense System option). Note: Process Defense System option has to be enabled 
to allow process activity confirmation. 


Confirmation actions are: 

- Writing to remote process 

- Browser execution 

- Active desktop background changes 
- AppInit_DLLs registry key changes 


4.4. Window handling icons 


There are four icons at the right-top corner of the program interface. Minimize button (top- 
left) allows you to minimize application windows to the system tray. Maximize/ Restore 
(top-right) button allow you to maximize application window to the maximum width and 
height of your desktop and restore it to the previous size. Help (bottom-left) button displays 
help information about currently open dialog. Information (bottom-right) button will show 
about dialog. 


@ FortKnox Personal Firewall 2009 Help 


The Network traffic and attack history window shows 
araphs for incoming and outgoing data and graph 
| of attacks happened in last time period. 


my 
5. Application Interface 


5.1. Statistics 


The statistics dialog shows information about incoming and outgoing traffic history and 
history of happened attacks. 


FortKnox Firewall 2009 
personal firewa 


Network Traffic and Attack History 


500KB | Incoming Traffic History 


Statistics 


Connections 


Traffic Log 
EP avout 
E sven 


NETGATE TECHNOLOGIES 


5.2. Connections 


The connection dialog shows all active network connections in the system. Every item 
shows local and remote IP addresses or only local IP addresses for listening states, status of 
the connection and associated process. 


a a FortKnox Firewall 2009 
Š à niet i f / | 
Active Network Connections 


DÈ 127.0.0.1:1063 <- 127.0.0.1:1064 ESTAB-IN @ Firefox 
Statistics EÈ 127.0.0.1:1069 <- 127.0.0.1:1070 ESTABAN @Firefox 
(E 127.0.0.1:1064 -> 127.0.0.1:1063 ESTAB-OUT @ Firefox 
PA © 127.0.0.1:1070 -> 127.0.0.1:1069 ESTAB-OUT @ Firefox 
Œ 0.0.0.0:0 LISTEN-IP [F]LSA Shell (Export Version) 
Advanced > 127.0.0.1:5354 LISTEN-TCP [Bonjour Service 
Œ 10.0.0.7:139 LISTEN-TCP [ENT Kernel System 
Options Œ 0.0.0.0:135 LISTEN-TCP [F] Generic Host Process for Win32 £ 
$) 0.0.0.0:445 LISTEN-TCP [NT Kernel System 
Applications > 0.0.0.0:8211 LISTEN-TCP O spy Emergency Malware and Spa 
o T 0.0.0.0:8212 LISTEN-TCP @ Spy Emergency Malware and Spa 
Traffic Log T 0.0.0.0:8213 LISTEN-TCP (8) Spy Emergency Malware and Spa 
> 0.0.0.0:8214 LISTEN-TCP O spy Emergency Malware and Spa 


About m nnn nnne Lieto TON Ann Manera 1 Piensas NARA” a 


Bloch Connection 
Whols Lookup Show on Map 


Support 


NETGATE TECHNOLOGIES 


Details - shows details about selected item. 
Block Connection- denies selected network connection. 


Trace Route - shows network route to the selected item’s destination. (Note: this method 
use ICMP messages and some systems may block this kind of traffic) 


WhoIs Lookup - lookups selected item's destination or entered domain name in the whois 
database. 


Terminate Process - terminates selected item’s process. 


Show on Map - option shows selected IP address on the map. 


5.3. Advanced 


The advanced dialog allows editing of extended application rules. These rules have more 
priority than application rules. 


- FortKnox Firewall 2009 
f j na f 2 Ww | 
Advanced Firewall Rules/Filtering 


a n 
Statistics Edit rule 
Connections 


Advanced (Œ) Enable Site Control System 
Filtering proxy server port: 


Opti 
: a Blocked Domain list: 


Applications 
i 


— Log a 


About O Enable Ad Blocking O Enable Referer Blocking 
y O Enable ActiveX Blocking O Enable Cookies Blocking 


Support 
Apply 


NETGATE TECHNOLOGIES 


Add rule - adds new advanced rule. 

Edit Rule - edits selected advanced rule. 

Remove - deletes checked advanced rules. 

Note: The following functionality under Advanced menu is supported for Internet Explorer 
(with disabled protected mode under Windows Vista), Mozilla Firefox and Opera browsers 
only. 


Blocked Domain list - this list contains used defined domains that should be blocked. To 
add new domain name use Add... button, to remove it you should use Delete button. 


Enable Site Control System - enables blocked domain list functionality. 


Filtering server proxy port - port of the filtering http proxy server, only experienced user 
should change this value. 


Enable Ad Blocking - enables ad filtering functionality. 

Enable ActiveX Blocking - enables blocking of ActiveX installation files (.cab, .ocx). 
Enable Referer Blocking - enables blocking of referrer field of the HTTP header, this field 
use some sites to track down pages from which you have come and may not work with this 
option enabled. 

Enable Cookies Blocking - enables blocking of internet browsers cookies, sites use 
cookies to save information between sessions, some sites may not work with this option 
enabled. 


Apply - applies changes under Advanced menu. Note: You may need to restart your 
internet browser to apply changes. 


Add/Edit Advanced Rules dialog: 


FortKnox Firewall 2009 


Add Advanced Rule: 


Description: Protocol: 

Route: Outgoing Action: 

Process: 

User: -- + Temporary restriction: 

Hour range: 8:00 ~ -800 ~ Daterange: |23. 2.2009 g- [2. 2.2003 Y 


Local host Remote host: 


(Œ) All addresses O all addresses 
O MAC address: O MAC address: 


O IP address: (m) IP address: 


Subnet Mask: ~- Subnet Mask: 


Description - field could be any text to identify the rule. 


Protocol - is the type of protocol that is used to communicate between two computers, use 
Any protocol to match all protocols. 


Action - action to be performed for the specified rule; Allow - allow connection, Deny - 
deny connection. 


Route - could be incoming and outgoing, use 'Any' to match both directions. 


Process - field could be empty to match all applications or use ... button to limit rule to a 
specific application only. To limit rule to a specific time period or specific user, use User and 
Temporary restriction lists. 


Local host - is IP address of your computer. Your computer can have more than one 
network card. Use All addresses option to match all your network interfaces or you 

can specify individual network card/address by entering MAC address or IP address. When 
entering IP address you have the option to specify Port and Subnet Mask. 


Remote host - is the IP or MAC address of the remote computer. Address 0.0.0.0 with 
mask Any means any IP address. 


5.4. Options 


The Options dialog allows configuration of individual functions of FortKnox Personal 
Firewall 2009. 


General Tab: 


> FortKnox Firewall 2009 
€ l f A 


Loaging Miscellaneous 


Network Neighborhood: 


Statistics O Disable sharing of my files and printers 


( Disable Network Neighborhood browsing 
Connections 


Notification: 
Advanced DD show security notification messages in the system tray 
O Show blocked applications messages in the system tray 


Options 
Startup: 


Applications m) Automatically load firewall at Windows startup 
Skins/Lanquaqes: 


Traffic Log 
Active skin: Default Active language: English 


About 


Password Protection: 
Protects your security settings from being changed. Set Password 


Apply 


Support 


NETGATE TECHNOLOGIES 


Disable sharing of my files and printers - when option is active all access to your files 
and printers is blocked. 


Disable network neighborhood browsing - active option disables browsing of shared 
resources of the network computers. 


Set Password - button allows you to protect firewall settings from being changed by setting 
access password. 


Show security applications notification messages in the system tray - when active, 
information balloon will popup when security message occurs. 


Show blocked applications notification messages in the system tray - when active, 
information balloon will popup when application is blocked. 


Automatically load firewall at Windows startup - when active, firewall will be launched 
at system startup. 


To change language and skins settings that match your individual preference set Active 
language and Active skin lists. 


To apply all changed settings on the General tab, press the Apply button. 


Enhancements Tab: 


> FortKnox Firewall 2009 


Logging Miscellaneous 


Enhancements: 


Statistics m) Enable Intrusion Prevention System (m) Enable portscan detection 
(E) Enable NetBios Protection (E) Enable Dos detection 

PS (8) Block Universal Plug and Play traffic (MM) Enable local network traffic 
(E) Enable OS fingerprint masquerading (Œ) Enable time synchronisation 


Advanced 
(m) Enable anti-MAC spoofing (m) Enable DHCP 


Options (E) Enable anti-ONS spoofing (E) Enable DNs 
O Enable anti-IP spoofing 


a m) Enable fingerprint authentication Reset fingerprints 
O Automatically block attacker for: 700 second(s) 


O Block fragmented packets 


About m) Enable Process Defense System Reset Trusted 


(8) Enable Appinit DLL Protection 


Traffic Log 


Support 


NETGATE TECHNOLOGIES 


Enable Intrusion Prevention System (IPS) - IPS is integrated Intrusion Detection 
System (IDS) which detects known threats in the packet stream and actively response to 
them. When a threat is detected based on a signature, user is automatically notified about it 
and depending on default action, threat is blocked. 


Enable NETBIOS Protection - option automatically blocks all NETBIOS communication 
from computers located outside of local subnet range. 


Block Universal Plug and Play traffic - option blocks UPnP traffic which is often used for 
distributed denial of service attacks. Note: you should disable this option if some of your 
application requires the UPnP protocol to operate. 


Enable OS fingerprinting masquerading - option blocks common attackers methods to 
detect your operating system. 


Enable anti-MAC spoofing - option blocks all unexpected ARP traffic which was not 
requested by your system. MAC spoofing is a way to hijack a communication session 
between two computers in order to hack one of the machines. 


Enable anti-DNS spoofing - option blocks all unexpected DNS responses to your system to 
prevent DNS attacks. 


Enable anti-IP spoofing - option randomize sequence number for each 


communication packet to prevent hijacking of communication session with IP spoofing 
attack. Note: some network cards could be incompatible with option. 


Enable fingerprint authentication - option verify every application for file changes. To 
reset all fingerprints for all application use Reset fingerprints button. 


Automatically block attacker for: - when option is enabled, all attacks to your system are 
automatically blocked for specified time period. To reset blocked attackers IP list press the 
Reset button. 


Block fragmented packets - when enabled, option drops all fragmented IP packets. 


Enable Process Defense System - option ensures integrity of applications and confirms 
potentially suspicious process actions. When enabled Confirm process action dialog will 
popup when such activity is detected. To reset all Trusted applications use Reset Trusted 
button. 


Enable AppInit DLL Protection - option notifies user about this registry change by 
applications. 


Enable portscan detection - option detects, notify and block scanning of your ports which 
is common hacker action to find out if you have some ports open and usable for attacks. 


Enable DoS detection - option checks all traffic for known Denial of Service (DoS) attacks 
which overload system services and block usage of services by common users. 


Enable local network traffic - option allows traffic on local network subnet range. 


Enable time synchronization - option allows traffic for time synchronization over Internet 
servers. 


Enable DHCP - option allows the Dynamic Host Configuration Protocol traffic which can be 
used to automatically assign IP addresses and other TCP/IP configuration information. Note: 
if you disable this option and you need DHCP for correct functionality of your system, you 
must create an advanced rule for UDP packets on remote ports 67 and 68. 


Enable DNS - option allows domain name resolution to IP addresses. Note: if you disable 
this option, you must create an advanced rule that allows UDP traffic for remote port 53. 


To apply all changed settings on the Enhancements tab, press the Apply button. 


Logging Tab: 


> FortKnox Firewall 2009 


Logging Miscellaneous 


Logs: 
Statistics Œ) Enable Security Log Maximum traffic log size (KB): 4096 


Œ Enable System Log Maximum packet log size (KB): 10240 


Connections 
- m) Enable Traffic Log 


Delete old log files after (days): 30 
O Enable Packet Log 
Advanced 


E-Mail Notification: 


Options 
(O Enable Notification 


From: Server: 


Applications 


To: Login: 
a Cc: Password: 


Subject: 


About Test E-Mail 
Support Apply 


NETGATE TECHNOLOGIES 


Enable Security log - option enables logging of important and security events. 
Enable System log - option enables logging of events related to firewall functionality. 
Enable Traffic log - option enables logging of all inbound and outbound network traffic. 


Enable Packet log - option enables logging of all communication packets including their 
data. 


To limit size of the traffic and the packet log use Maximum traffic log size and Maximum 
packet log size options. 


Delete old log files after - option sets numbers of days after which are the old log files 
deleted. Setting value to zero turns this option off. 


Enable Notification - option turns on e-mail notification when security event occurs. To 
test your e-mail settings use the Test E-Mail button. 


To apply all changed settings on the Logging tab, press the Apply button. 


Miscellaneous Tab: 


no oa 


Statistics 


Connections 


Advanced 


Options 


FortKnox Firewall 2009 


Logging 


ICMP: 
Incomina: 
m) (0) Echo Reply 
m) (3) Dest. Unreachable 
O (4) Source Quench 
O 6) Redirect 
Outaoina: 
O (0) Echo Reply 
O (3) Dest. Unreachable 
O (4) Source Quench 


O 8) Echo 

(m) (11) Time Exceeded 
O (12) Param. Problem 
O (13) Timestamp 


(E) (8) Echo 
O (11) Time Exceeded 
O (12) Param. Problem 


O (14) Timestamp Reply 
O (17) Address Mask Rq. 
O (18) Address Mask Rp. 


O (14) Timestamp Reply 
O (17) Address Mask Ra. 
O (18) Address Mask Rp. 


Applications O (5) Redirect 


Updates: 


O (13) Timestamp 
Traffic Log Œ) Notify me about newer version 

O Automatically update signatures 
Host: Port 


Proxy Type: 


About 


Support Login: Password: HTTP 


NETGATE TECHNOLOGIES 


ICMP - settings for incoming and outgoing packets. Change these settings only if you are 
experienced user. 


Notify me about newer version - option will notify you when a new version of FortKnox 
Personal Firewall is available. 


Automatically update signatures - when option is enabled, new signatures will 
be automatically downloaded and installed from the server. To update signatures 
manually, press the Update button. 


To apply all changed settings on the Miscellaneous tab, press the Apply button. 


5.5. Applications 


The Applications dialog shows all application specific rules. Every rule can have allow, deny 
or ask action set and every application connection that was confirmed by you is listed here. 


> FortKnox Firewall 2009 
Individual Application Rules 


OS Bonjour Service C:\Program Files\BonjourimDNSResp O 
Statistics De Spy Emergency Malware and Spam Filteri... C:\Program Files\NETGATE\Spy Emer 

De Firefox C:\Program Files\Mozilla Firefoxifirefox. 
Connections De Spy Emergency 2009 C:\Program Files\NETGATE\Spy Emer 
i Sé Trillian C:\Program Files\Trillian\trillian.exe 
Advanced on NT Kernel System C:\WINDOWS\System32\ntoskrnl.exe 

Oe PopTray E-Mail Notifier C:\Program Files\PopTray\PopTray.exe 


Options O” PADGen - Portable Application Descriptio... C:\Program Files\PADGen\PADGen.ex 
Os Outlook Express C:\Program Files\Outlook Expressimsi 

Applications mes) Opera Internet Browser C:\Program Files\Opera\Opera.exe 

E Os Mozilla Thunderbird C:\Program Files\Mozilla Thunderbirdit 

Traffic Log FNG windows Media Plaver C:\Proaram Files\Windows Media Plav 4 


saints Select All Deselect All 
Import Rules... Export Rules... 


Support 


NETGATE TECHNOLOGIES 


Select All - selects all items in the list. 
Deselect All - deselects all items in the list. 


Allow - sets selected items to allow mode; such process traffic will be automatically 
allowed. 


Deny - sets selected items to deny mode; such process traffic will be automatically blocked. 
Ask - sets selected items to ask mode; confirmation for such process will popup. 

Remove - this option deletes selected item/rule from the list. 

Import Rules - imports saved applications and advanced rules from a file. 


Export Rules - saves current applications and advanced rules to a file. 


5.6. Traffic Log 


The Traffic Log dialog shows all the network traffic inspected by the FortKnox Personal 


Firewall 2009. 


a 


Statistics 
oros 
Advanced 
Options 
Applications 
Traffic Log 


About 


Support 


NETGATE TECHNOL 


FortKnox Firewall 2009 


Traffic Log 


(9 07:39:36 
TÈ 07:39:36 
@ 07:39:36 
© 07:39:38 
Œ 07:39:38 
© 07:39:38 
© 07:39:39 
Œ 07:39:39 
© 07:39:39 
@ 07:39:39 
© 07:39:39 
© 07:39:39 
© 07:39:40 


10.0.0.7:58 > 255.255.255.255:57 
10.0.0.7:68 <- 10.0.0.2:67 
10.0.0.7:137 -> 10.255.255.255:137 
10.0.0.7:1025 -> 10.0.0.2:53 
10.0.0.7:1025 <- 10.0.0.2:53 
10.0.0.7:5353 -> 224.0.0.251:5353 
10.0.0.7:137 -> 10.255.255.255:137 
10.0.0.7:137 <- 10.0.0.7:137 
10.0.0.7:0 -> 224.0.0.2:0 
10.0.0.7:5353 -> 224.0.0.251:5353 
10.0.0.7:5353 -> 224 .0.0.251:5353 
10.0.0.7:5353 -> 224 0.0.251:5353 
10.0.0.7:5353 -> 224.0.0.251:5353 


Show on Map 
Whols Lookup 


Details - shows details about selected item. 


_Allowed 
Allowed 
Asked 
Allowed 
Allowed 
Allowed 
Allowed 
Allowed 
Allowed 
Allowed 
Allowed 
Allowed 
Allowed 


Traffic 


1. 3.2009 


CAWINDOWSIsystem3215 O 
CWINDOWSIsystem221s IM 
CWINDOWSISystem321r 
C:\Program FilesiBonjour 
C:\Program Files\Bonjour' 
C:\Program FilesiBonjour 
C:\WINDOWS\System32\r 
CIWINDOWSISystem321r 
C:WINDOWS\System32\r 
C:\Program Files\Bonjoun 
C:\Program FilesiBonjour! 
C:\Program Files\Bonjour' 
C:\Program FilesiBonjour g3 


Trace Route - shows network route to the selected item's destination. (Note: this method 
use ICMP messages and some systems may block this kind of traffic) 


WhoIs Lookup - lookups selected item’s destination or entered domain name in the whois 


database. 


Export... - save active log file to the file. 


Delete - deletes saved log file/files. 


Show on Map - option shows selected IP address on the map. 


To switch between different types of log files use the list near to the Details button. 


5.7. Buy/ About 


In the trial version this dialog shows FortKnox Personal Firewall features; in the registered 
version this dialog shows information about registered user. After registration the Buy 
button will change to About button after next program start. 


FortKnox Firewall 2009 
FortKnox Personal Firewall 


What will purchase of FortKnox Personal Firewall brings you? 
Statistics 
E - Protection against hacker attacks, spyware and trojan horses 
Connections - Complete control how individual applications communicate over network 


- Built-in Intrusion Prevention System 


Advanced 
- Statefull Packet and Deep Packet Inspection firewall technologies 


Options - Intuitive and clear user interface 


- Ad Blocking and Site Control System 
Applications 


- Premium technical support 


Traffic Log - And much more... 


To visit our online shop now please press the 'Buy Now' button or navigate your web browser 
to: 
http:/www.netgate.sk/order/index.php?product=2 


About 


Support 


Buy Now 


NETGATE TECHNOLOGIES 


Enter serial - by pressing this button user has the option to enter registration information; 
the registration dialog will popup. 


Buy Now - by pressing this button your default browser windows will be shown and the 
online shop web page will be displayed allowing purchasing the product. 


5.8. Technical support 


The Technical support dialog allows users to send e-mail message to the FortKnox 
Personal Firewall technical support team. To send a message fill in email, name and 
description and press the Submit button to send the message. User can additionally add 
attachment by pressing the ... button. 


> FortKnox Firewall 2009 
FortKnox Personal Firewall Technical Support 


The FortKnox Personal Firewall Technical Support service is here to help in problematic 


; situations. Please contact our technical support team using this form: 
Statistics 


; Your email:* 
Connections 


Your name:* 


Advanced a 
$ Problem description:* 


Options 


Applications 


Attachment a 


All fields marked with * are required. Please ensure that you are connected to the Internet before 
submitting. 


Traffic Log 


About 


Support 


NETGATE TECHNOLOGIES 


6. Technical support 


Technical support team can be reached at support@netgate.sk . 


All other questions regarding sales or general information questions please direct to 


netgate@netgate.sk . 


